Vulnerabilities (CVE)

Filtered by vendor Linen Subscribe
Filtered by product Linen
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-45522 1 Linen 1 Linen 2024-09-05 N/A 9.8 CRITICAL
Linen before cd37c3e does not verify that the domain is linen.dev or www.linen.dev when resetting a password. This occurs in create in apps/web/pages/api/forgot-password/index.ts.